Mercurial > pidgin
view libpurple/protocols/mxit/cipher.c @ 31889:79e1479747cf
Refactor the transport-layer encryption and decryption.
Also fix key initialization when PIN is shorter than 8 characters.
| author | andrew.victor@mxit.com |
|---|---|
| date | Mon, 15 Aug 2011 19:24:16 +0000 |
| parents | 56092767c298 |
| children | a86d2f291923 |
line wrap: on
line source
/* * MXit Protocol libPurple Plugin * * -- user password encryption -- * * Pieter Loubser <libpurple@mxit.com> * * (C) Copyright 2009 MXit Lifestyle (Pty) Ltd. * <http://www.mxitlifestyle.com> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02111-1301 USA */ #include "internal.h" #include "purple.h" #include "mxit.h" #include "cipher.h" #include "aes.h" /* password encryption */ #define INITIAL_KEY "6170383452343567" #define SECRET_HEADER "<mxit/>" #define ENCRYPT_HEADER "<mxitencrypted ver=\"5.2\"/>" /*------------------------------------------------------------------------ * Pad the secret data using ISO10126 Padding. * * @param secret The data to pad (caller must ensure buffer has enough space for padding) * @return The total number of 128-bit blocks used */ static int pad_secret_data( char* secret ) { int blocks = 0; int passlen; int padding; passlen = strlen( secret ); blocks = ( passlen / 16 ) + 1; padding = ( blocks * 16 ) - passlen; secret[passlen] = 0x50; secret[(blocks * 16) - 1] = padding; return blocks; } /*------------------------------------------------------------------------ * Add ISO10126 Padding to the data. * * @param data The data to pad. */ static void padding_add( GString* data ) { unsigned int blocks = ( data->len / 16 ) + 1; unsigned int padding = ( blocks * 16 ) - data->len; g_string_set_size( data, blocks * 16 ); data->str[data->len - 1] = padding; } /*------------------------------------------------------------------------ * Remove ISO10126 Padding from the data. * * @param data The data from which to remove padding. */ static void padding_remove( GString* data ) { unsigned int padding; if ( data->len == 0 ) return; padding = data->str[data->len - 1]; g_string_truncate( data, data->len - padding ); } /*------------------------------------------------------------------------ * Generate the Transport-Layer crypto key. * (Note: this function is not-thread safe) * * @param session The MXit Session object * @return The transport-layer crypto key. */ static char* transport_layer_key( struct MXitSession* session ) { static char key[16 + 1]; int pwdlen = strlen( session->acc->password ); /* initialize with initial key */ g_strlcpy( key, INITIAL_KEY, sizeof( key ) ); /* client key (8 bytes) */ memcpy( key, session->clientkey, strlen( session->clientkey ) ); /* add last 8 characters of the PIN (no padding if less characters) */ if ( pwdlen <= 8 ) memcpy( key + 8, session->acc->password, pwdlen ); else memcpy( key + 8, session->acc->password + ( pwdlen - 8 ), 8 ); return key; } /*------------------------------------------------------------------------ * Encrypt the user's cleartext password using the AES 128-bit (ECB) * encryption algorithm. * * @param session The MXit session object * @return The encrypted & encoded password. Must be g_free'd when no longer needed. */ char* mxit_encrypt_password( struct MXitSession* session ) { char key[64]; char exkey[512]; char pass[64]; char encrypted[64]; char* base64; int blocks; int size; int i; purple_debug_info( MXIT_PLUGIN_ID, "mxit_encrypt_password\n" ); memset( encrypted, 0x00, sizeof( encrypted ) ); memset( exkey, 0x00, sizeof( exkey ) ); memset( pass, 0x58, sizeof( pass ) ); pass[sizeof( pass ) - 1] = '\0'; /* build the custom AES encryption key */ g_strlcpy( key, INITIAL_KEY, sizeof( key ) ); memcpy( key, session->clientkey, strlen( session->clientkey ) ); ExpandKey( (unsigned char*) key, (unsigned char*) exkey ); /* build the custom data to be encrypted */ g_strlcpy( pass, SECRET_HEADER, sizeof( pass ) ); strcat( pass, session->acc->password ); /* pad the secret data */ blocks = pad_secret_data( pass ); size = blocks * 16; /* now encrypt the password. we encrypt each block separately (ECB mode) */ for ( i = 0; i < size; i += 16 ) Encrypt( (unsigned char*) pass + i, (unsigned char*) exkey, (unsigned char*) encrypted + i ); /* now base64 encode the encrypted password */ base64 = purple_base64_encode( (unsigned char*) encrypted, size ); return base64; } /*------------------------------------------------------------------------ * Decrypt a message using transport-layer encryption. * * @param session The MXit session object * @param message The encrypted message data (is base64-encoded). * @return The decrypted message. Must be g_free'd when no longer needed. */ char* mxit_decrypt_message( struct MXitSession* session, char* message ) { gsize raw_len; guchar* raw_message; char exkey[512]; int i; GString* decoded = NULL; /* remove optional header: <mxitencrypted ver="5.2"/> */ if ( strncmp( message, ENCRYPT_HEADER, strlen( ENCRYPT_HEADER ) ) == 0 ) message += strlen( ENCRYPT_HEADER ); /* base64 decode the message */ raw_message = purple_base64_decode( message, &raw_len ); /* build the AES key */ ExpandKey( (unsigned char*) transport_layer_key( session ), (unsigned char*) exkey ); /* AES decrypt each block */ decoded = g_string_sized_new( raw_len ); for ( i = 0; i < raw_len; i += 16 ) { char block[16]; Decrypt( (unsigned char*) raw_message + i, (unsigned char*) exkey, (unsigned char*) block ); g_string_append_len( decoded, block, 16 ); } g_free( raw_message ); /* check that the decrypted message starts with header: <mxit/> */ if ( strncmp( decoded->str, SECRET_HEADER, strlen( SECRET_HEADER ) != 0 ) ) { g_string_free( decoded, TRUE ); return NULL; /* message could not be decrypted */ } /* remove ISO10126 padding */ padding_remove( decoded ); /* remove encryption header */ g_string_erase( decoded, 0, strlen( SECRET_HEADER ) ); return g_string_free( decoded, FALSE ); } /*------------------------------------------------------------------------ * Encrypt a message using transport-layer encryption. * * @param session The MXit session object * @param message The message data. * @return The encrypted message. Must be g_free'd when no longer needed. */ char* mxit_encrypt_message( struct MXitSession* session, char* message ) { char exkey[512]; int i; GString* raw_message = NULL; GString* encoded = NULL; gchar* base64; purple_debug_info( MXIT_PLUGIN_ID, "encrypt message: '%s'\n", message ); /* build the AES key */ ExpandKey( (unsigned char*) transport_layer_key( session ), (unsigned char*) exkey ); /* append encryption header to message data */ raw_message = g_string_sized_new( strlen( SECRET_HEADER ) + strlen( message ) ); g_string_append( raw_message, SECRET_HEADER ); g_string_append( raw_message, message ); /* add ISO10126 padding */ padding_add( raw_message ); /* encrypt each block */ encoded = g_string_sized_new( raw_message->len ); for ( i = 0; i < raw_message->len; i += 16 ) { char block[16]; Encrypt( (unsigned char*) raw_message->str + i, (unsigned char*) exkey, (unsigned char*) block ); g_string_append_len( encoded, block, 16 ); } g_string_free( raw_message, TRUE ); /* base64 encode the encrypted message */ base64 = purple_base64_encode( (unsigned char *) encoded->str, encoded->len ); g_string_free( encoded, TRUE ); purple_debug_info( MXIT_PLUGIN_ID, "encrypted message: '%s'\n", base64 ); return base64; }